• Home
  • Everbridge IT Alerting vs. Splunk Enterprise Security

Everbridge IT Alerting vs Splunk Enterprise Security comparison

Cancel
You must select at least 2 products to compare!
Everbridge Logo

Everbridge IT Alerting

Read 22 Everbridge IT Alerting reviews
1,251 views|759 comparisons
100% willing to recommend
Splunk Logo

Splunk Enterprise Security

Read 228 Splunk Enterprise Security reviews
25,711 views|20,955 comparisons
92% willing to recommend
Comparison Buyer's Guide
Download the complete report
Buyer's Guide
IT Alerting and Incident Management
March 2024
Executive Summary

We performed a comparison between Everbridge IT Alerting and Splunk Enterprise Security based on real PeerSpot user reviews.

Find out what your peers are saying about PagerDuty, Atlassian, Everbridge and others in IT Alerting and Incident Management.
To learn more, read our detailed IT Alerting and Incident Management Report (Updated: March 2024).
Download the complete report
768,857 professionals have used our research since 2012.
Featured Review
Anonymous User
Helps in identifying potential impact and allows us to see where our assets are in relation to a risk event
It's much easier to determine the impact, especially as we're developing a crisis management program. One of the things that the program was... Read more →
Anonymous User
Helps improve our incident response, is robust, and user-friendly
CloudWatch, the native AWS monitoring tool, offers limited metric detail and a complex navigation experience across different data streams. In... Read more →
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"It just runs. I do not think we have had a single outage; nothing. There has not been a single issue with it in the time that we have had it running. It just works.""A robust solution with multiple modules that can be leveraged.""I manage the platform, and I don't really use it. The scheduling aspect of it is valuable where you create your groups and then either manually or via API call, you can initiate an alert. It'll look at the schedule and only contact those people who are on-call. So, it takes the guesswork out.""The most valuable feature is automated escalation, as it eliminates a manual process which is prone to errors.""It helps to pull the right people in very quickly, through a collection of utilities where you can say, "I want to notify more than one person at a time. I want to escalate at my discretion and via rules within the system."""The email integration, the ability to launch from other programs using email triggers, was the primary reason we got the solution and it's been really helpful""Even in the first few months, we realized some of those benefits around shortening the time to resolution.""People are able to join a bridge with one press of a button. It gives us the ability to contact the correct people via rules, based on conditions."

More Everbridge IT Alerting Pros →

"It helps streamline troubleshooting and log analysis.""It's better than IBM, in my opinion, because it's an independent entity.""The additional vendors we've brought on board, particularly the elastic, have been quite beneficial.""Splunk has improved our operations by giving us access to more information and allowing us to deploy more use cases.""The level of robustness on offer is very good.""We can easily configure things as required in relation to our use cases.""It has the ability to correlate data, analyze and review it.""Good for log collection and log management."

More Splunk Enterprise Security Pros →

Cons
"The feature that xMatters has that Everbridge doesn't have, or has in a limited way, is a method of funneling some alerts, as an FYI, to other stakeholders who are not necessarily prime actors in an incident.""The integration with other solutions needs improvement... Due to issues with the libraries provided by Everbridge, we have not been able to integrate IT Alerting with our incident management tool.""An ability to get to the database that houses our information would be great. Currently, we are at the mercy of Everbridge and, if they do not have the function built, we cannot gather the information that we would like.""The incident templates can get complex and hard to troubleshoot, so it helps to focus on keeping it simple.""With their templates, you can only have a maximum of three phases: new, updated, and resolved. It's not always that easy when we open up a call, that we identify who we need, page out, and we're good. A lot of time it requires multiple page-outs. Being restricted to those three phases, there's no way to say, "I want this variable to be persistent, and this one to not be." ...I would like to see a bit more flexibility and tighter control over the templates and the variables you can create.""Their integration capabilities are still progressing, but not quite where we'd like to see them yet. They're moving there with that orchestration capability where they're seeing the potential of an API-first mentality. So instead of trying to build custom connections into everything, you open up APIs to allow other systems to talk to IT Alerting and allow IT Alerting to talk to other systems. There is room for improvement, but they get it.""Lacks ability to customize messages.""It could use more enhancement type integrations, but no improvements to functionality are needed."

More Everbridge IT Alerting Cons →

"Most of my interaction is with the user community, which is how Splunk wants it. When I need help, that community is very hit or miss.""The only thing which can be improved is that they are too subjective on whom their Splunk4Good initiative can be applied. They market it as you only need to be a nonprofit, but there is more to it.""Its setup is a little bit complex for a distributed environment. Their support can also be better. If we miss the response for more than a week, they usually close the case. Sometimes, it can take us more than a week to reply.""The solution could use a different licensing model.""The product was difficult to back up the first time.""I feel the solution to be too slow.""We find that the maintenance process could be a lot better.""Splunk ES could have more pre-built integrations and rules. The detection is fairly accurate, but it depends on the rules you create. Splunk's out-of-the-box configuration isn't that useful."

More Splunk Enterprise Security Cons →

Pricing and Cost Advice
  • "When we did our contract, we did a three year contract with fixed pricing. We locked in the pricing for three years. As we have grown, we locked in pricing for additional units of employees."
  • "Their call structure is based on how many people are IT alert people and who is on the calendar, and the cost will be driven by those numbers versus if you are using it for the non-IT alert. As you look at the competition and other vendors, make sure you truly understand your cost structure with them."
  • "They are one of the top three most expensive products. I also understand if you are going to use them for IT alerting, it is worth it. They are competitively priced, but the IT alerting is the differentiator. The way that they market it and push it out. That is their premier function."
  • "Pricing is reasonable."
  • "For us, the pricing is a good value. I can't say whether or not their list pricing looks favorable to everyone who's checking, but I can say that the process of sourcing and procurement with them was very professional, comfortable, and friendly. The negotiations were done well on both sides, and in the end, I'd say the price was very effective... I think that people will find that Everbridge is a great listener and is willing to meet in the middle."
  • "Their pricing is a good value and very reasonable. They are very upfront about their pricing. There is nothing confusing about it."
  • "We thought the base product was pretty reasonable. It can pricey once you start adding stuff on."
  • "It saves us a lot of time."

    • More Everbridge IT Alerting Pricing and Cost Advice →

  • "Pricing and licensing is quite expensive. But for the value the product provides, it seems at par in the market."
  • "Although Splunk is an expensive product, it is designed to be utilized across your organization in order to maximize your ROI and lower your TCO."
  • "It is not cheap."
  • "Splunk Enterprise becomes extremely expensive after the 20GB/month license."
  • "You will eat up whatever you purchase quickly. The level of insights that Splunk empowers is addictive."
  • "Splunk licensing model might seem expensive but with all the gain in functionalities you will have compared to traditional SIEM solutions I think it’s worth the price."
  • "Pricing is pretty fair."
  • "While licensing can be a concern, there are ways to reduce the licensing costs including filtering some events."

    • More Splunk Enterprise Security Pricing and Cost Advice →

    report
    See Which Vendors Are Best For You
    Use our free recommendation engine to learn which IT Alerting and Incident Management solutions are best for your needs.
    See Recommendations
    768,857 professionals have used our research since 2012.
    Comparison Review
    Vinod Shankar
    HP ArcSight vs. IBM QRadar vs. ​McAfee Nitro vs. Splunk vs. RSA Security vs. LogRhythm
    We at Infosecnirvana.com have done several posts on SIEM. After the Dummies Guide on SIEM, we are following it up with a SIEM Product Comparison – 101 deck. So, here it is for your viewing pleasure. Let me know what you think by posting your comments below. The key products compared here are based on Gartner Magic Q which is what Organizations typically use to select SIEM vendors. The Vendors mentioned here in the deck are : 1. HP ArcSight 2. McAfee Nitro 3. IBM QRadar 4. Splunk SIEM 5. RSA Security Analytic 6. LogRhythm. SIEM Technology Space SIEM market analysis of the last 3 years suggest: Market consolidation of SIEM players (25 vendors in 2011 to 16 vendors in 2013)Only products with technology maturity and a strong road map have featured in leaders quadrant.HP ArcSight & IBM Q1 Labs have maintained leadership in SIEM industry with continued technology upgradeMcAfee Nitro has strong product features & road map to challenge HP & IBM for leadershipHPArcSight The ArcSight Enterprise Threat and Risk Management (ETRM) Platform is an integrated set of products for collecting, analysing, and managing enterprise Security Event information ArcSight Enterprise Security Manager (ESM): Correlation and analysis engine used to identify security threat in real-time& virtual environments ArcSight Logger: Log storage and Search solution ArcSight IdentityView: User Identity tracking/User activity monitoring ArcSight Connectors: For data collection from a variety of data… Read more →
    Questions from the Community
    What do you like most about Everbridge IT Alerting?
    Top Answer:It's mainly for mass notification and pooling of contacts. Pooling of customers is valuable.
    Read all 18 answers   →
    What is your experience regarding pricing and costs for Everbridge IT Ale...
    Top Answer:It's a seven out of ten for us in terms of pricing. We've just gone through a process of looking at other solutions.
    Read all 14 answers   →
    What needs improvement with Everbridge IT Alerting?
    Top Answer:I know that we get frustrated at the capacity of SMS messages. It's not very long, and if you want to send a long message, they end up sending you a link to the rest of the message. It's not easy to… more »
    Read all 18 answers   →
    What SOC product do you recommend?
    Top Answer:For tools I’d recommend:  -SIEM- LogRhythm -SOAR- Palo Alto XSOAR Doing commercial w/o both (or at least an XDR) is asking to miss details that are critical, and ending up a statistic. Also,… more »
    Read all 12 answers   →
    What is a better choice, Splunk or Azure Sentinel?
    Top Answer:It would really depend on (1) which logs you need to ingest and (2) what are your use cases Splunk is easy for ingestion of anything, but the charge per GB/Day Indexed and it gets expensive as log… more »
    How does Splunk compare with Azure Monitor?
    Top Answer:Splunk handles a high amount of data very well. We use Splunk to capture information and as an aggregator for monitoring information from different sources. Splunk is very good at alerting us if we… more »
    Read all 2 answers   →
    Ranking
    9th
    out of 54 in IT Alerting and Incident Management
    Views
    1,251
    Comparisons
    759
    Reviews
    3
    Average Words per Review
    632
    Rating
    8.0
    2nd
    out of 80 in Security Information and Event Management (SIEM)
    Views
    25,711
    Comparisons
    20,955
    Reviews
    63
    Average Words per Review
    958
    Rating
    8.4
    Comparisons
    Learn More
    Everbridge
    Splunk
    Overview

    Everbridge IT Alerting is a closed-loop cyber security and incident response automation solution that helps organizations respond to IT Incidents faster and improve teams’ response performance by automating communication, collaboration, and orchestration processes for ServiceOps, IT Security Ops, DevOps, and Disaster Recovery Ops. As a FedRamp-certified solution, IT Alerting capabilities include in-depth scheduling/calendars, interactive & analytical reporting, on-call scheduling, automated escalation, response workflow automation, recording, and much more. The solution is offered as a cloud service based on the secure, highly available, resilient, and globally scalable Everbridge CEM platform.

    Learn why 5,400+ enterprise customers trust Everbridge (NASDAQ (EVBG)) with their IT Response Automation Management and IT Alerting solutions; visit ITAlerting.com to learn more or request a demo.

    Need Integration with your ITOM, ITSM, SIEM tools?

    Plug Everbridge IT Alerting directly into your ITOM, ITSM, SIEM, IT Monitoring tools including ServiceNow or BMC Remedy with our certified, two-way integrations and automatically contact the on-call IT team members, launch conference bridges and automatically escalate to the senior personnel in case of major IT incidents.

    Splunk Enterprise Security is a SIEM, log management, and IT operations analytics tool. The solution provides users with the ability to secure their information and manage their data in the cloud, data centers, or other applications. Splunk Enterprise Security also offers visibility from different areas, levels, and devices, rather than from a single system, thus, providing its users with flexibility. Splunk Enterprise Security can monitor data and analyze, detect, and prevent intrusions. This benefits users as it provides alerts to possible intrusions, helps users to be proactive, and reduces risk factors. 

    Full visibility across your environment

    Break down data silos and gain actionable intelligence by ingesting data from multicloud and on-premises deployments. Get full visibility to quickly detect malicious threats in your environment.

    Fast threat detection

    Defend against threats with advanced security analytics, machine learning and threat intelligence that focus detection and provide high-fidelity alerts to shorten triage times and raise true positive rates.

    Efficient investigations

    Gather all the context you need and initiate flexible investigations with security analytics at your fingertips. The built-in open and extensible data platform boosts productivity and drives down fatigue.

    Open and scalable

    Built on an open and scalable data platform, you can stay agile in the face of evolving threats and business needs. Splunk meets you where you are on your cloud journey, and integrates across your data, tools and content.

    Sample Customers
    Choice Hotels, Alexion, Navy Federal Credit Union, EastWest Bank, IBM, Core Logic, Paypal, Charter Communications, Lowes, Express Scripts, Finastra, Worldpay
    Splunk has more than 7,000 customers spread across over 90 countries. These customers include Telenor, UniCredit, ideeli, McKenney's, Tesco, and SurveyMonkey.
    Top Industries
    REVIEWERS
    Financial Services Firm26%
    Pharma/Biotech Company16%
    Energy/Utilities Company11%
    Manufacturing Company11%
    VISITORS READING REVIEWS
    Computer Software Company14%
    Financial Services Firm14%
    Government11%
    Healthcare Company10%
    REVIEWERS
    Computer Software Company19%
    Financial Services Firm15%
    Government10%
    Energy/Utilities Company7%
    VISITORS READING REVIEWS
    Financial Services Firm15%
    Computer Software Company14%
    Government9%
    Manufacturing Company7%
    Company Size
    REVIEWERS
    Small Business13%
    Large Enterprise88%
    VISITORS READING REVIEWS
    Small Business16%
    Midsize Enterprise11%
    Large Enterprise73%
    REVIEWERS
    Small Business31%
    Midsize Enterprise12%
    Large Enterprise57%
    VISITORS READING REVIEWS
    Small Business19%
    Midsize Enterprise13%
    Large Enterprise68%
    Buyer's Guide
    IT Alerting and Incident Management
    March 2024
    Download Free Report
    Find out what your peers are saying about PagerDuty, Atlassian, Everbridge and others in IT Alerting and Incident Management. Updated: March 2024.
    DOWNLOAD NOW
    768,857 professionals have used our research since 2012.

    Everbridge IT Alerting is ranked 9th in IT Alerting and Incident Management with 22 reviews while Splunk Enterprise Security is ranked 2nd in Security Information and Event Management (SIEM) with 228 reviews. Everbridge IT Alerting is rated 8.8, while Splunk Enterprise Security is rated 8.4. The top reviewer of Everbridge IT Alerting writes "We have seen substantial savings with its usage as it drives down our MTTR". On the other hand, the top reviewer of Splunk Enterprise Security writes "It has a drag-and-drop interface, so you don't need to know SQL or Java to construct a query ". Everbridge IT Alerting is most compared with PagerDuty Operations Cloud, ServiceNow, OnSolve Platform for Critical Event Management and xMatters , whereas Splunk Enterprise Security is most compared with Wazuh, Dynatrace, IBM Security QRadar, Microsoft Sentinel and Elastic Security.

    We monitor all IT Alerting and Incident Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.